$ rpki-client -vvf cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215648.roa File: AS215648.roa (raw, json) Hash identifier: SxagSkkWbP5rI0MsvoNofbqpqz0Bj5eQ1BYYn9Vc5+k= Subject key identifier: DE:FB:3B:F7:99:8E:E5:B2:04:4A:92:79:64:38:AF:E9:58:E9:09:A6 Certificate issuer: /CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Certificate serial: 11828691CA880EE563C67A90E7C9E78D9DD27A5A Authority key identifier: 8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject info access: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215648.roa Signing time: Fri 04 Jul 2025 06:53:18 +0000 ROA not before: Fri 04 Jul 2025 06:48:18 +0000 ROA not after: Fri 03 Jul 2026 06:53:18 +0000 asID: 215648 IP address blocks: 2a06:9f81:3700::/40 maxlen: 48 Validation: OK Signature path: rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.mft rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.crl rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/D14B6FCF2B2C69BE085E9F959872DCBE8EA54177.mft rsync://rpki.ripe.net/repository/DEFAULT/0Utvzyssab4IXp-VmHLcvo6lQXc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 06 Jul 2025 02:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:82:86:91:ca:88:0e:e5:63:c6:7a:90:e7:c9:e7:8d:9d:d2:7a:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B Validity Not Before: Jul 4 06:48:18 2025 GMT Not After : Jul 3 06:53:18 2026 GMT Subject: CN=DEFB3BF7998EE5B2044A92796438AFE958E909A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:4a:7b:17:40:60:57:75:db:ad:4b:1e:ac:8d: b6:47:b5:ad:d6:6d:7f:7b:46:4e:4e:01:72:ef:30: b9:20:ef:56:89:c6:bf:5d:c9:eb:66:dc:6d:11:3c: 27:9e:4b:db:b4:05:04:f9:d0:95:fd:1f:34:2e:1d: 5a:48:06:2e:15:75:2d:22:af:ca:df:d1:17:0b:47: 7a:b0:3b:72:ba:5a:17:8a:61:a2:6f:cc:72:b4:0c: 16:ad:1a:53:4c:8a:e2:94:4c:19:41:46:d1:96:bf: 91:8c:24:a0:f0:6e:5a:0d:2c:93:b8:81:6e:4c:56: bb:6f:eb:4f:2a:c0:89:9c:d0:a2:d7:fe:19:19:1e: 95:69:70:af:1f:f2:03:ad:96:08:79:f7:27:65:e4: 31:4b:f8:e7:de:4e:72:22:b2:f7:e2:51:5b:84:04: 1c:b4:c4:e7:34:7e:67:61:8f:40:c1:12:e4:20:5d: 98:03:bc:72:62:cb:32:c3:e5:fa:91:8a:16:46:6c: 82:83:93:26:c0:d8:54:c0:51:63:0f:46:c6:25:e2: 4e:67:c3:f0:03:6a:e2:25:77:46:a8:c3:85:4f:16: 4e:77:d7:b8:94:b6:f1:7b:51:4d:1e:ec:b3:41:57: 27:3c:1e:c7:2e:db:7b:1e:00:bd:88:c3:d1:e5:95: f6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:FB:3B:F7:99:8E:E5:B2:04:4A:92:79:64:38:AF:E9:58:E9:09:A6 X509v3 Authority Key Identifier: keyid:8F:C3:CF:B5:DF:3E:8F:72:1C:08:B8:B5:FE:7F:61:D6:7B:0B:E1:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/7/8FC3CFB5DF3E8F721C08B8B5FE7F61D67B0BE13B.cer Subject Information Access: Signed Object - URI:rsync://cloudie-repo.rpki.app/repo/CLOUDIE-RPKI/4/AS215648.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a06:9f81:3700::/40 Signature Algorithm: sha256WithRSAEncryption 34:5c:3a:62:43:11:12:74:88:88:74:cf:1d:b2:d1:d3:46:b2: 2c:9a:fd:1c:1a:20:ca:77:ba:3c:ae:88:bd:80:7a:ed:79:f9: c5:5b:c4:74:63:64:ea:dd:17:0b:b8:fd:01:90:98:58:ca:70: 56:3a:f0:f5:82:4a:cc:60:c2:51:e2:b8:e5:6e:1b:6f:41:0a: 33:62:b2:04:48:df:a1:04:99:85:a2:96:70:da:3f:12:6b:d5: fe:57:2f:cb:3c:a9:d3:f6:ab:4a:64:24:1e:d4:d8:1d:a7:6b: ea:1a:d1:4f:de:3e:4e:05:a3:98:ee:d5:84:84:36:a7:b1:3d: ed:14:27:93:3b:3d:c5:28:ea:d4:5a:28:e2:ea:eb:ce:ef:b3: a8:0b:e5:c7:4e:91:89:34:87:8d:7f:ca:65:42:95:ce:d9:45: 94:25:ee:ff:a5:95:22:5f:d3:a1:94:74:cc:77:6e:18:02:e5: 8e:a2:14:56:1d:08:d5:13:7d:01:42:74:04:be:73:5c:00:16: 91:fb:9b:f8:33:b9:2c:9e:8f:a2:3c:2e:5d:0b:8c:64:59:64: 3e:7d:08:a1:28:96:8a:55:17:7d:d1:ca:04:ef:bd:dc:2a:3a: c8:be:d2:ae:b3:36:96:f3:40:38:c7:7a:ae:58:c4:38:ce:91: 40:0a:c1:af -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUEYKGkcqIDuVjxnqQ58nnjZ3SelowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQjAeFw0yNTA3MDQwNjQ4MThaFw0yNjA3MDMwNjUzMThaMDMxMTAvBgNV BAMTKERFRkIzQkY3OTk4RUU1QjIwNDRBOTI3OTY0MzhBRkU5NThFOTA5QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQSnsXQGBXddutSx6sjbZHta3W bX97Rk5OAXLvMLkg71aJxr9dyetm3G0RPCeeS9u0BQT50JX9HzQuHVpIBi4VdS0i r8rf0RcLR3qwO3K6WheKYaJvzHK0DBatGlNMiuKUTBlBRtGWv5GMJKDwbloNLJO4 gW5MVrtv608qwImc0KLX/hkZHpVpcK8f8gOtlgh59ydl5DFL+OfeTnIisvfiUVuE BBy0xOc0fmdhj0DBEuQgXZgDvHJiyzLD5fqRihZGbIKDkybA2FTAUWMPRsYl4k5n w/ADauIld0aow4VPFk5317iUtvF7UU0e7LNBVyc8Hscu23seAL2Iw9HllfaPAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU3vs795mO5bIESpJ5ZDiv6VjpCaYwHwYDVR0j BBgwFoAUj8PPtd8+j3IcCLi1/n9h1nsL4TswDgYDVR0PAQH/BAQDAgeAMG8GA1Ud HwRoMGYwZKBioGCGXnJzeW5jOi8vY2xvdWRpZS1yZXBvLnJwa2kuYXBwL3JlcG8v Q0xPVURJRS1SUEtJLzQvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3RjYxRDY3 QjBCRTEzQi5jcmwwgZMGCCsGAQUFBwEBBIGGMIGDMIGABggrBgEFBQcwAoZ0cnN5 bmM6Ly9ycGtpLXJwcy5hcmluLm5ldC9yZXBvc2l0b3J5LzhhODQ4YWRmODUwZDA2 M2UwMTg1NzU1YzkxYmUzZjlkLzcvOEZDM0NGQjVERjNFOEY3MjFDMDhCOEI1RkU3 RjYxRDY3QjBCRTEzQi5jZXIwWgYIKwYBBQUHAQsETjBMMEoGCCsGAQUFBzALhj5y c3luYzovL2Nsb3VkaWUtcmVwby5ycGtpLmFwcC9yZXBvL0NMT1VESUUtUlBLSS80 L0FTMjE1NjQ4LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAOBAIAAjAIAwYAKgafgTcwDQYJKoZIhvcNAQELBQADggEBADRc OmJDERJ0iIh0zx2y0dNGsiya/RwaIMp3ujyuiL2Aeu15+cVbxHRjZOrdFwu4/QGQ mFjKcFY68PWCSsxgwlHiuOVuG29BCjNisgRI36EEmYWilnDaPxJr1f5XL8s8qdP2 q0pkJB7U2B2na+oa0U/ePk4Fo5ju1YSENqexPe0UJ5M7PcUo6tRaKOLq687vs6gL 5cdOkYk0h41/ymVClc7ZRZQl7v+llSJf06GUdMx3bhgC5Y6iFFYdCNUTfQFCdAS+ c1wAFpH7m/gzuSyej6I8Ll0LjGRZZD59CKEolopVF33RygTvvdwqOsi+0q6zNpbz QDjHeq5YxDjOkUAKwa8= -----END CERTIFICATE-----Generated at Sat Jul 5 04:06:50 2025 by rpki-client